qianjunakasumi opened a new issue #4255: URL: https://github.com/apache/apisix/issues/4255
### Issue description #### English translation Hello, I am using APISIX to monitor HTTPS port as the traffic entrance of my application Most of the traffic has been cleaned by CDN, But there is still a small amount of traffic directly requesting my original IP address This may bring hidden dangers to application security I want to protect my application by banning IP address access Can you tell me how to do it? Thank you for your work `If the control does not print the log, it will be the perfect solution, I don’t want abnormal logs to appear in the file :)` --- #### 中文原文 你好,我正在使用 APISIX 监听 HTTPS 端口作为我的应用程序的流量入口 绝大多数的流量经过了 CDN 的清洗, 但是仍有少部分的流量直接请求我的原始 IP 地址 这可能对应用安全带来隐患 我希望通过禁止 IP 地址访问来保护我的应用程序 你能告诉我怎么做吗?谢谢你的工作 `如果阻止并不打印日志,可能更加完美!我不希望看到非正常的请求写入日志,因为已经完全阻断!:)` --- #### Additional Information 附加信息 I tried to search for keywords such as `ban ip` and `block ip` in the Issues list, but I did not get the correct results. If you find it in the documentation or elsewhere, thank you for letting me know! I also tried to inject Nginx configuration in `config.yaml`, but it shows conflicts during runtime and will be ignored. 我尝试在 Issues 列表中搜索 `ban ip` 、 `block ip` 等关键词,但没有得到正确结果, 如果您在文档或其他地方发现了它,谢谢你告诉我! 我还尝试在 `config.yaml` 中注入 Nginx 配置,但运行时它显示冲突,将被忽略。 ### Environment Request help without environment information will be ignored or closed. * apisix version (cmd: `apisix version`): 2.5 * OS (cmd: `uname -a`): * OpenResty / Nginx version (cmd: `nginx -V` or `openresty -V`): * etcd version, if have (cmd: run `curl http://127.0.0.1:9090/v1/server_info` to get the info from server-info API): * apisix-dashboard version, if have: * luarocks version, if the issue is about installation (cmd: `luarocks --version`): -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
